fabric: node ips

Author: cheina97

apis/networking/v1alpha1/internalnode_types.go

@@ -51,13 +51,28 @@ type InternalNodeSpecInterface struct {
 type InternalNodeSpec struct {
 	// Interface contains the information about network interfaces.
 	Interface InternalNodeSpecInterface `json:"interface"`
+}
+
+// InternalNodeStatusNodeIP defines the observed state of InternalNode.
+// It contains the IPs used by an host network pod (scheduled on that node) as src IPs to contact a pod.
+type InternalNodeStatusNodeIP struct {
+	// Local is the src IP used to contact a pod on the same node.
+	Local *IP `json:"local,omitempty"`
+	// Remote is the src IP used to contact a pod on another node.
+	Remote *IP `json:"remote,omitempty"`
+}
+
+// InternalNodeStatus defines the observed state of InternalNode.
+type InternalNodeStatus struct {
 	// NodeAddress is the address of the node.
-	NodeAddress string `json:"nodeAddress"`
+	NodeIP InternalNodeStatusNodeIP `json:"nodeIP"`
 }
 
 // +kubebuilder:object:root=true
 // +kubebuilder:resource:scope=Cluster,categories=liqo
-// +kubebuilder:printcolumn:name="Node Address",type=string,JSONPath=`.spec.nodeAddress`
+// +kubebuilder:subresource:status
+// +kubebuilder:printcolumn:name="Node IP Local",type=string,JSONPath=`.status.nodeIP.local`
+// +kubebuilder:printcolumn:name="Node IP Remote",type=string,JSONPath=`.status.nodeIP.remote`
 // +kubebuilder:printcolumn:name="Age",type=date,JSONPath=`.metadata.creationTimestamp`
 
 // InternalNode contains the network internalnode settings.
@@ -66,7 +81,8 @@ type InternalNode struct {
 	metav1.TypeMeta   `json:",inline"`
 	metav1.ObjectMeta `json:"metadata,omitempty"`
 
-	Spec InternalNodeSpec `json:"spec,omitempty"`
+	Spec   InternalNodeSpec   `json:"spec,omitempty"`
+	Status InternalNodeStatus `json:"status,omitempty"`
 }
 
 // +kubebuilder:object:root=true

apis/networking/v1alpha1/zz_generated.deepcopy.go

@@ -21,17 +21,25 @@ import (
 	"os"
 
 	"github.com/spf13/cobra"
+	corev1 "k8s.io/api/core/v1"
+	"k8s.io/apimachinery/pkg/labels"
 	"k8s.io/apimachinery/pkg/runtime"
+	"k8s.io/apimachinery/pkg/selection"
 	utilruntime "k8s.io/apimachinery/pkg/util/runtime"
+	"k8s.io/client-go/rest"
 	"k8s.io/klog/v2"
 	ctrl "sigs.k8s.io/controller-runtime"
+	"sigs.k8s.io/controller-runtime/pkg/cache"
+	"sigs.k8s.io/controller-runtime/pkg/client"
 	"sigs.k8s.io/controller-runtime/pkg/client/config"
 	"sigs.k8s.io/controller-runtime/pkg/log"
 	"sigs.k8s.io/controller-runtime/pkg/metrics/server"
 
 	networkingv1alpha1 "github.com/liqotech/liqo/apis/networking/v1alpha1"
 	"github.com/liqotech/liqo/pkg/fabric"
+	"github.com/liqotech/liqo/pkg/fabric/sourcedetector"
 	"github.com/liqotech/liqo/pkg/firewall"
+	"github.com/liqotech/liqo/pkg/gateway"
 	"github.com/liqotech/liqo/pkg/route"
 	flagsutils "github.com/liqotech/liqo/pkg/utils/flags"
 	"github.com/liqotech/liqo/pkg/utils/mapper"
@@ -45,6 +53,7 @@ var (
 
 func init() {
 	utilruntime.Must(networkingv1alpha1.AddToScheme(scheme))
+	utilruntime.Must(corev1.AddToScheme(scheme))
 }
 
 func main() {
@@ -79,6 +88,14 @@ func run(cmd *cobra.Command, _ []string) error {
 	// Get the rest config.
 	cfg := config.GetConfigOrDie()
 
+	// Create a label selector to filter only the events for gateway pods
+	reqGatewayPods, err := labels.NewRequirement(
+		gateway.GatewayComponentKey,
+		selection.Equals,
+		[]string{gateway.GatewayComponentGateway},
+	)
+	utilruntime.Must(err)
+
 	// Create the manager.
 	mgr, err := ctrl.NewManager(cfg, ctrl.Options{
 		MapperProvider: mapper.LiqoMapperProvider(scheme),
@@ -88,11 +105,33 @@ func run(cmd *cobra.Command, _ []string) error {
 		},
 		HealthProbeBindAddress: options.ProbeAddr,
 		LeaderElection:         false,
+		NewCache: func(config *rest.Config, opts cache.Options) (cache.Cache, error) {
+			opts.ByObject = map[client.Object]cache.ByObject{
+				&corev1.Pod{}: {
+					Label: labels.NewSelector().Add(*reqGatewayPods),
+				},
+			}
+			return cache.New(config, opts)
+		},
 	})
 	if err != nil {
 		return fmt.Errorf("unable to create manager: %w", err)
 	}
 
+	gwr, err := sourcedetector.NewGatewayReconciler(
+		mgr.GetClient(),
+		mgr.GetScheme(),
+		mgr.GetEventRecorderFor("gateway-controller"),
+		options,
+	)
+	if err != nil {
+		return fmt.Errorf("unable to create gateway reconciler: %w", err)
+	}
+
+	if err := gwr.SetupWithManager(mgr); err != nil {
+		return fmt.Errorf("unable to setup gateway reconciler: %w", err)
+	}
+
 	// Setup the firewall configuration controller.
 	fwcr, err := firewall.NewFirewallConfigurationReconcilerWithFinalizer(
 		mgr.GetClient(),

cmd/fabric/main.go

@@ -62,6 +62,12 @@ func main() {
 	klog.InitFlags(legacyflags)
 	flagsutils.FromFlagToPflag(legacyflags, cmd.Flags())
 
+	geneve.InitFlags(cmd.Flags(), options)
+	if err := geneve.MarkFlagsRequired(&cmd); err != nil {
+		klog.Error(err)
+		os.Exit(1)
+	}
+
 	gateway.InitFlags(cmd.Flags(), options.GwOptions)
 	if err := gateway.MarkFlagsRequired(&cmd); err != nil {
 		klog.Error(err)

cmd/gateway/geneve/main.go

@@ -54,7 +54,6 @@ func init() {
 }
 
 // +kubebuilder:rbac:groups=coordination.k8s.io,resources=leases,verbs=get;create;update;delete
-// +kubebuilder:rbac:groups=core,resources=events,verbs=get;list;watch;create;update;patch;delete
 
 func main() {
 	var cmd = cobra.Command{

cmd/gateway/main.go

@@ -17,8 +17,11 @@ spec:
   scope: Cluster
   versions:
   - additionalPrinterColumns:
-    - jsonPath: .spec.nodeAddress
-      name: Node Address
+    - jsonPath: .status.nodeIP.local
+      name: Node IP Local
+      type: string
+    - jsonPath: .status.nodeIP.remote
+      name: Node IP Remote
       type: string
     - jsonPath: .metadata.creationTimestamp
       name: Age
@@ -62,14 +65,31 @@ spec:
                 required:
                 - gateway
                 type: object
-              nodeAddress:
-                description: NodeAddress is the address of the node.
-                type: string
             required:
             - interface
-            - nodeAddress
+            type: object
+          status:
+            description: InternalNodeStatus defines the observed state of InternalNode.
+            properties:
+              nodeIP:
+                description: NodeAddress is the address of the node.
+                properties:
+                  local:
+                    description: Local is the src IP used to contact a pod on the
+                      same node.
+                    pattern: ^(([1-9]{0,1}[0-9]{0,2}|2[0-4][0-9]|25[0-5])\.){3}([1-9]{0,1}[0-9]{0,2}|2[0-4][0-9]|25[0-5])$
+                    type: string
+                  remote:
+                    description: Remote is the src IP used to contact a pod on another
+                      node.
+                    pattern: ^(([1-9]{0,1}[0-9]{0,2}|2[0-4][0-9]|25[0-5])\.){3}([1-9]{0,1}[0-9]{0,2}|2[0-4][0-9]|25[0-5])$
+                    type: string
+                type: object
+            required:
+            - nodeIP
             type: object
         type: object
     served: true
     storage: true
-    subresources: {}
+    subresources:
+      status: {}

deployments/liqo/charts/liqo-crds/crds/networking.liqo.io_internalnodes.yaml

@@ -1,4 +1,24 @@
 rules:
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - delete
+  - get
+  - list
+  - patch
+  - update
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - get
+  - list
+  - watch
 - apiGroups:
   - networking.liqo.io
   resources:
@@ -45,6 +65,26 @@ rules:
   - patch
   - update
   - watch
+- apiGroups:
+  - networking.liqo.io
+  resources:
+  - internalnodes
+  verbs:
+  - get
+  - list
+  - patch
+  - update
+  - watch
+- apiGroups:
+  - networking.liqo.io
+  resources:
+  - internalnodes/status
+  verbs:
+  - get
+  - list
+  - patch
+  - update
+  - watch
 - apiGroups:
   - networking.liqo.io
   resources:

deployments/liqo/files/liqo-fabric-ClusterRole.yaml

@@ -79,7 +79,7 @@ app.kubernetes.io/part-of: {{ quote (include "liqo.name" .) }}
 {{- end }}
 
 {{/*
-Common metadata for Templates
+Common metadata for Gateway Templates
 */}}
 {{- define "liqo.metadataTemplate" -}}
 name: {{ quote "{{ .Name }}" }}
@@ -89,13 +89,14 @@ labels:
 {{- end }}
 
 {{/*
-Common Labels for Templates
+Common Labels for Gateway Templates
 */}}
 {{- define "liqo.labelsTemplate" -}}
 {{ include "liqo.selectorLabelsTemplate" . }}
 helm.sh/chart: {{ quote (include "liqo.chart" .) }}
 app.kubernetes.io/version: {{ quote (include "liqo.version" .) }}
 app.kubernetes.io/managed-by: {{ quote .Release.Service }}
+networking.liqo.io/component: "gateway"
 {{- end }}
 
 {{/*

deployments/liqo/templates/_helpers.tpl

@@ -84,9 +84,15 @@ spec:
                 - --namespace={{"{{ .Namespace }}"}}
                 - --remote-cluster-id={{"{{ .ClusterID }}"}}
                 - --gateway-uid={{"{{ .GatewayUID }}"}}
+                - --node-name={{"$(NODE_NAME)"}}
                 - --mode=server
                 - --metrics-address=:8084
                 - --health-probe-bind-address=:8085
+                env:
+                - name: NODE_NAME
+                  valueFrom:
+                    fieldRef:
+                      fieldPath: spec.nodeName
                 securityContext:
                   capabilities:
                     add:

deployments/liqo/templates/liqo-wireguard-gateway-client-template.yaml

@@ -96,10 +96,16 @@ spec:
                 - --name={{"{{ .Name }}"}}
                 - --namespace={{"{{ .Namespace }}"}}
                 - --remote-cluster-id={{"{{ .ClusterID }}"}}
+                - --node-name={{"$(NODE_NAME)"}}
                 - --gateway-uid={{"{{ .GatewayUID }}"}}
                 - --mode=server
                 - --metrics-address=:8084
                 - --health-probe-bind-address=:8085
+                env:
+                - name: NODE_NAME
+                  valueFrom:
+                    fieldRef:
+                      fieldPath: spec.nodeName
                 securityContext:
                   capabilities:
                     add: